CVE-2019-12816
Modules.cpp in ZNC before 1.7.4-rc1 allows remote authenticated non-admin users to escalate privileges and execute arbitrary code by loading a module with a crafted name.
Date published : 2019-06-15
https://seclists.org/bugtraq/2019/Jun/23
https://github.com/znc/znc/commit/8de9e376ce531fe7f3c8b0aa4876d15b479b7311